> Only certain access points are whitelisted to access things. If you aren't using one then you're blacklisted.

No, this is not how these terms work. Blacklist and whitelist are not just words for opposite sides of a partitioned set. Both blacklists and whitelists are explicitly enumerated lists. If I blacklist a single thing, I have not implicitly created a whitelist containing everything else in the universe. Establishing that VPNs are often blacklisted is not - at all! - the same thing as establishing the existence of a "global whitelist".

These are usually implemented as actual whitelists. Someone goes through each AS, and decides whether it should have unrestricted access or not. Verizon gets unlimited access, because it mostly provides service to end users. Hetzner doesn't, because it mostly has servers. There are companies that enumerate all networks and tell you if they are user-mostly or server-mostly networks, so you can block all but the user-mostly networks.